list.php

泛微协同办公系统标准版E-office V5.5的源代码内含泛微办公系统V5.5自动注册文件。

<?php

function default_validate( )
{
	global $connection;
	global $customer_id;
	global $customer_name;
	global $manage_user;
	$query2 = "select up.* from user_priv as up, user as u where up.USER_PRIV=u.USER_PRIV and u.USER_ID='".$manage_user."'";
	$cursor2 = exequery( $connection, $query2 );
	if ( $row2 = mysql_fetch_array( $cursor2 ) )
	{
		$priv_no = $row2['PRIV_NO'];
	}
	$query3 = "select up.* from user_priv as up, user as u where up.USER_PRIV=u.USER_PRIV and u.USER_ID='".$_SESSION['LOGIN_USER_ID']."'";
	$cursor3 = exequery( $connection, $query3 );
	if ( $row3 = mysql_fetch_array( $cursor3 ) )
	{
		$login_priv_no = $row3['PRIV_NO'];
	}
	if ( $login_priv_no < $priv_no )
	{
		$purview_ses = "<a href=\"#\" onclick=\"customer_detail('".$customer_id."');\">".$customer_name."</a>";
	}
	else
	{
		$purview_ses = false;
	}
	return $purview_ses;
}

function dept_validate( )
{
	global $connection;
	global $purview_dept;
	if ( $purview_dept == "ALL_DEPT" )
	{
		return true;
	}
	$query2 = "select d.* from department as d, user as u where u.DEPT_ID=d.DEPT_ID and u.USER_ID='".$_SESSION['LOGIN_USER_ID']."'";
	$cursor2 = exequery( $connection, $query2 );
	if ( $row2 = mysql_fetch_array( $cursor2 ) )
	{
		$dept_id = $row2['DEPT_ID'];
	}
	if ( array_search( $dept_id, explode( ",", $purview_dept ) ) !== false )
	{
		return true;
	}
	else
	{
		return false;
	}
}

function role_validate( )
{
	global $connection;
	global $purview_role;
	$query2 = "select up.* from user_priv as up, user as u where up.USER_PRIV=u.USER_PRIV and u.USER_ID='".$_SESSION['LOGIN_USER_ID']."'";
	$cursor2 = exequery( $connection, $query2 );
	if ( $row2 = mysql_fetch_array( $cursor2 ) )
	{
		$login_priv_no = $row2['USER_PRIV'];
	}
	if ( array_search( $login_priv_no, explode( ",", $purview_role ) ) !== false )
	{
		return true;
	}
	else
	{
		return false;
	}
}

function user_validate( )
{
	global $connection;
	global $purview_user;
	if ( array_search( $_SESSION['LOGIN_USER_ID'], explode( ",", $purview_user ) ) !== false )
	{
		return true;
	}
	else
	{
		return false;
	}
}

include_once( "inc/auth.php" );
include_once( "inc/function_page_01.php" );
if ( $_REQUEST['cur_page'] == "" )
{
	$cur_page = 1;
}
else
{
	$cur_page = $_REQUEST['cur_page'];
}
$connection = openconnection( );
if ( $CUSTOMER_ID != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where CUSTOMER_ID='".$CUSTOMER_ID."'";
	}
	else
	{
		$WHERE_STR .= " and CUSTOMER_ID='".$CUSTOMER_ID."'";
	}
}
if ( $LINKMAN_NAME != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where LINKMAN_NAME like '%".$LINKMAN_NAME."%'";
	}
	else
	{
		$WHERE_STR .= " and LINKMAN_NAME like '%".$LINKMAN_NAME."%'";
	}
}
if ( $BIRTHDAY != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where BIRTHDAY like '%".$BIRTHDAY."%'";
	}
	else
	{
		$WHERE_STR .= " and BIRTHDAY like '%".$BIRTHDAY."%'";
	}
}
if ( $POST_PRIV != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where POST_PRIV like '%".$POST_PRIV."%'";
	}
	else
	{
		$WHERE_STR .= " and POST_PRIV like '%".$POST_PRIV."%'";
	}
}
if ( $HOBBY != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where HOBBY like '%".$HOBBY."%'";
	}
	else
	{
		$WHERE_STR .= " and HOBBY like '%".$HOBBY."%'";
	}
}
if ( $ADD_HOME != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where ADD_HOME like '%".$ADD_HOME."%'";
	}
	else
	{
		$WHERE_STR .= " and ADD_HOME like '%".$ADD_HOME."%'";
	}
}
if ( $POSTALCODE_HOME != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where POSTALCODE_HOME like '%".$POSTALCODE_HOME."%'";
	}
	else
	{
		$WHERE_STR .= " and POSTALCODE_HOME like '%".$POSTALCODE_HOME."%'";
	}
}
if ( $TEL_NO_WORK != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where TEL_NO_WORK like '%".$TEL_NO_WORK."%'";
	}
	else
	{
		$WHERE_STR .= " and TEL_NO_WORK like '%".$TEL_NO_WORK."%'";
	}
}
if ( $TEL_NO_HOME != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where TEL_NO_HOME like '%".$TEL_NO_HOME."%'";
	}
	else
	{
		$WHERE_STR .= " and TEL_NO_HOME like '%".$TEL_NO_HOME."%'";
	}
}
if ( $MOBILE != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where MOBILE like '%".$MOBILE."%'";
	}
	else
	{
		$WHERE_STR .= " and MOBILE like '%".$MOBILE."%'";
	}
}
if ( $EMAIL != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where EMAIL like '%".$EMAIL."%'";
	}
	else
	{
		$WHERE_STR .= " and EMAIL like '%".$EMAIL."%'";
	}
}
if ( $OICQ != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where OICQ like '%".$OICQ."%'";
	}
	else
	{
		$WHERE_STR .= " and OICQ like '%".$OICQ."%'";
	}
}
if ( $ICQ != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where ICQ like '%".$ICQ."%'";
	}
	else
	{
		$WHERE_STR .= " and ICQ like '%".$ICQ."%'";
	}
}
if ( $WHERE_STR != "" )
{
	$query = "SELECT * from LINKMAN ".$WHERE_STR."";
}
else
{
	$query = "SELECT * from LINKMAN";
}
switch ( $_REQUEST['order'] )
{
case "linkman_name" :
	$query .= " order by LINKMAN_NAME";
	break;
case "sex" :
	$query .= " order by SEX";
	break;
case "birthday" :
	$query .= " order by BIRTHDAY";
	break;
case "tel_no_work" :
	$query .= " order by TEL_NO_WORK";
	break;
case "mobile" :
	$query .= " order by MOBILE";
	break;
case "email" :
	$query .= " order by EMAIL";
	break;
default :
	$query .= " order by LINKMAN_ID";
	break;
}
$query .= $_REQUEST['sens'] ? " ASC" : " DESC";
$cursor = exequery( $connection, $query );
while ( $ROW = mysql_fetch_array( $cursor ) )
{
	$LINKMAN_ID = $ROW['LINKMAN_ID'];
	$CUSTOMER_ID1 = $ROW['CUSTOMER_ID'];
	$LINKMAN_NAME1 = $ROW['LINKMAN_NAME'];
	$SEX1 = $ROW['SEX'];
	$BIRTHDAY1 = $ROW['BIRTHDAY'];
	$POST_PRIV1 = $ROW['POST_PRIV'];
	$HOBBY1 = $ROW['HOBBY'];
	$ADD_HOME1 = $ROW['ADD_HOME'];
	$POSTALCODE_HOME1 = $ROW['POSTALCODE_HOME'];
	$TEL_NO_WORK1 = $ROW['TEL_NO_WORK'];
	$TEL_NO_HOME1 = $ROW['TEL_NO_HOME'];
	$MOBILE1 = $ROW['MOBILE'];
	$EMAIL1 = $ROW['EMAIL'];
	$OICQ1 = $ROW['OICQ'];
	$ICQ1 = $ROW['ICQ'];
	$mostly_linkman = $ROW['MOSTLY_LINKMAN'];
	$query2 = "SELECT * from customer where CUSTOMER_ID={$CUSTOMER_ID1}";
	$cursor2 = exequery( $connection, $query2 );
	if ( $ROW2 = mysql_fetch_array( $cursor2 ) )
	{
		$old_customer_name = $ROW2['CUSTOMER_NAME'];
		$manage_user = $ROW2['MANAGE_USER'];
		$customer_id = $ROW2['CUSTOMER_ID'];
		$manage_user = $ROW2['MANAGE_USER'];
		$purview = $ROW2['PURVIEW'];
		$purview_dept = $ROW2['PURVIEW_DEPT'];
		$purview_role = $ROW2['PURVIEW_ROLE'];
		$purview_user = $ROW2['PURVIEW_USER'];
	}
	$query3 = "select USER_ID from USER where USER_ID='".$manage_user."'";
	$cursor3 = exequery( $connection, $query3 );
	if ( $row3 = mysql_fetch_row( $cursor3 ) )
	{
		$user_id = $row3[0];
	}
	switch ( $purview )
	{
	case "1" :
		$purview_ses = default_validate( );
		break;
	case "2" :
		$purview_ses = "<a href=\"#\" onclick=\"customer_detail('".$customer_id."');\">".$customer_name."</a>";
		break;
	case "3" :
		$dept_validate = dept_validate( );
		$role_validate = role_validate( );
		$user_validate = user_validate( );
		if ( ( $dept_validate || $role_validate || $user_validate ) === false )
		{
			$purview_ses = default_validate( );
		}
		else
		{
			$purview_ses = "<a href=\"#\" onclick=\"customer_detail('".$customer_id."');\">".$customer_name."</a>";
		}
	}
	if ( $manage_user == $_SESSION['LOGIN_USER_ID'] || $manage_user == "" )
	{
		$purview_ses = "<a href=\"#\" onclick=\"customer_detail('".$customer_id."');\">".$customer_name."</a>";
	}
	if ( $purview_ses == false )
	{
	}
	else
	{
		$str_LINKMAN_ID .= $LINKMAN_ID.",";
	}
}
$str_LINKMAN_ID = substr( $str_LINKMAN_ID, 0, -1 );
$str_LINKMAN_ID = $str_LINKMAN_ID == "" ? 0 : $str_LINKMAN_ID;
echo "\r\n<html>\r\n<head>\r\n<title>联系人管理 </title>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\">\r\n";
echo "<s";
echo "cript Language=\"JavaScript\">\r\nfunction delete_linkman(LINKMAN_ID)\r\n{\r\n\tvar msg='确认要删除该联系人么？';\r\n\r\n\tif(window.confirm(msg))\r\n\t{\r\n\t\tURL = \"delete.php?r_b=b_search&cur_page=";
echo $cur_page;
echo "&sens=";
echo $_REQUEST['sens'];
echo "&order=";
echo $_REQUEST['order'];
echo "&CUSTOMER_ID=";
echo $CUSTOMER_ID;
echo "&LINKMAN_NAME=";
echo $LINKMAN_NAME;
echo "&SEX=";
echo $SEX;
echo "&BIRTHDAY=";
echo $BIRTHDAY;
echo "&POST_PRIV=";
echo $POST_PRIV;
echo "&HOBBY=";
echo $HOBBY;
echo "&ADD_HOME=";
echo $ADD_HOME;
echo "&POSTALCODE_HOME=";
echo $POSTALCODE_HOME;
echo "&TEL_NO_WORK=";
echo $TEL_NO_WORK;
echo "&TEL_NO_HOME=";
echo $TEL_NO_HOME;
echo "&MOBILE=";
echo $MOBILE;
echo "&EMAIL=";
echo $EMAIL;
echo "&OICQ=";
echo $OICQ;
echo "&ICQ=";
echo $ICQ;
echo "&MEMO=";
echo $MEMO;
echo "&PAGE_START=";
echo $PAGE_START;
echo "&linkman_id=\" + LINKMAN_ID;\r\n\t\twindow.location = URL;\r\n\t}\r\n}\r\n\r\nfunction linkman_detail(linkman_id)\r\n{\r\n\tURL=\"detail.php?linkman_id=\"+linkman_id;\r\n\tmyleft=(screen.availWidth-500)/2;\r\n\twindow.open(URL,\"\",\"height=550,width=450,status=1,toolbar=no,menubar=no,location=no,scrollbars=yes,top=100,left=\"+myleft+\",resizable=yes\");\r\n}\r\n\r\nfunction customer_detail(customer_id)\r\n{\r\n\tvar url\t= \"../customer/deta";
echo "il.php?CUSTOMER_ID=\"+customer_id;\r\n\twindow.open(url,\"\",\"height=650,width=900,status=1,toolbar=no,menubar=no,location=no,scrollbars=yes,top=30,left=30,resizable=yes\");\r\n}\r\n</script>\r\n</head>\r\n\r\n<body class=\"bodycolor\" topmargin=\"5\" >\r\n<table border=\"0\" width=\"100%\" cellspacing=\"1\" cellpadding=\"0\">\r\n  <tr class=\"tablehead1\">\r\n    <td>\r\n\t<img src=\"/images/notify_new.gif\" align=\"absmiddle\">联系人查询结果 \r\n ";
echo "   </td>\r\n  </tr>\r\n  <tr class=\"tablehead2\">\r\n    <td>\r\n\t<BUTTON class=btn onClick=\"javscript:history.back();\" title=\"返回\"><table><tr valign=top ><td><img src=\"/images/littlegif/b_u.gif\" align=\"center\"></td> <td>";
echo "<s";
echo "pan id=\"showallid\">返回</span></td></tr></table></BUTTON>\r\n    </td>\r\n  </tr>\r\n</table>\r\n<br>\r\n";
if ( $CUSTOMER_ID != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where CUSTOMER_ID='".$CUSTOMER_ID."'";
	}
	else
	{
		$WHERE_STR .= " and CUSTOMER_ID='".$CUSTOMER_ID."'";
	}
}
if ( $LINKMAN_NAME != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where LINKMAN_NAME like '%".$LINKMAN_NAME."%'";
	}
	else
	{
		$WHERE_STR .= " and LINKMAN_NAME like '%".$LINKMAN_NAME."%'";
	}
}
if ( $BIRTHDAY != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where BIRTHDAY like '%".$BIRTHDAY."%'";
	}
	else
	{
		$WHERE_STR .= " and BIRTHDAY like '%".$BIRTHDAY."%'";
	}
}
if ( $POST_PRIV != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where POST_PRIV like '%".$POST_PRIV."%'";
	}
	else
	{
		$WHERE_STR .= " and POST_PRIV like '%".$POST_PRIV."%'";
	}
}
if ( $HOBBY != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where HOBBY like '%".$HOBBY."%'";
	}
	else
	{
		$WHERE_STR .= " and HOBBY like '%".$HOBBY."%'";
	}
}
if ( $ADD_HOME != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where ADD_HOME like '%".$ADD_HOME."%'";
	}
	else
	{
		$WHERE_STR .= " and ADD_HOME like '%".$ADD_HOME."%'";
	}
}
if ( $POSTALCODE_HOME != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where POSTALCODE_HOME like '%".$POSTALCODE_HOME."%'";
	}
	else
	{
		$WHERE_STR .= " and POSTALCODE_HOME like '%".$POSTALCODE_HOME."%'";
	}
}
if ( $TEL_NO_WORK != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where TEL_NO_WORK like '%".$TEL_NO_WORK."%'";
	}
	else
	{
		$WHERE_STR .= " and TEL_NO_WORK like '%".$TEL_NO_WORK."%'";
	}
}
if ( $TEL_NO_HOME != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where TEL_NO_HOME like '%".$TEL_NO_HOME."%'";
	}
	else
	{
		$WHERE_STR .= " and TEL_NO_HOME like '%".$TEL_NO_HOME."%'";
	}
}
if ( $MOBILE != "" )
{
	if ( $WHERE_STR == "" )
	{
		$WHERE_STR .= " where MOBILE like '%".$MOBILE."%'";